Privacy Policy
This Privacy Policy explains how SPECTAVIA ([SPECTAVIA GmbH, registered in [CANTON]], Switzerland; "SPECTAVIA", "we", "us") collects, uses, and protects personal information about users of the SPECTAVIA app and website.
Questions, or want to exercise your rights? Contact privacy@spectavia.com.
The short version
The SPECTAVIA app is free. We collect the minimum needed to run your account: your email address and a user identifier. We do not run analytics or advertising, we do not track you across apps or websites, we never sell your data, and we cannot see your photo library. You can export your data or delete your account at any time, in the app.
What we collect
Information you give us directly
- Account information. When you create an account we collect your email address and authentication method (Sign in with Apple, or email and password). With Sign in with Apple you may use Apple's private relay email; that is fine with us.
- Communications. If you contact support@spectavia.com, we keep the correspondence so we can respond.
Information collected automatically
- Technical session data. Standard connection data (such as IP address) is processed transiently to deliver the service and protect against abuse. We do not retain full IP addresses after the session ends, and we do not build usage profiles.
- Cached content. Photos you view may be cached on your device for offline viewing. Caching is local; it transmits nothing additional to us.
What we do NOT collect
- No analytics or behavioural tracking. The app contains no third-party analytics SDKs, no advertising identifiers, and no cross-app tracking. No App Tracking Transparency prompt is needed because there is no tracking.
- Your photo library. When you open your own stereo images in the viewer, the system photo picker runs outside the app's process. The app receives only the images you explicitly select and never reads your library.
- Your location, contacts, or browsing history.
- Payment information. The app is free; we process no payments and hold no payment data.
How we use your information
- Provide and operate the service and your account
- Authenticate you and protect your account
- Communicate with you about service updates, security issues, or your account
- Comply with legal obligations and prevent fraud, abuse, or unauthorised access
We do not use your information for advertising of any kind, and we never sell personal data.
Sharing your information
We share information only with the service providers needed to run SPECTAVIA, under data-processing agreements that restrict use to our instructions:
- Cloudflare — content delivery, edge compute, authentication backend, DNS
- Backblaze (USA) — encrypted off-site backup
- Apple — Sign in with Apple authentication
International transfers (e.g., EU/EEA to the US) occur under Standard Contractual Clauses or equivalent lawful mechanisms. We may also disclose information if required by valid legal process, and we do not voluntarily disclose user information to government agencies absent such process. If SPECTAVIA is ever acquired or merged, we will notify you and give you the opportunity to delete your account first.
How long we keep information
- Account information — for the life of your account, plus the period Swiss law requires for business records after deletion.
- Support correspondence — up to 2 years from the last interaction.
When data is no longer needed, we delete or anonymise it. You can delete your account at any time in the app (Account → Delete account); deletion includes a full data export option first, per GDPR and the Swiss FADP.
Your rights
If you are in the EU/EEA, UK, Switzerland, or California, you have the right to access, correct, delete, and receive a portable copy of your personal data, to restrict or object to certain processing, and to withdraw consent. Contact privacy@spectavia.com; we respond within 30 days. You may also complain to your data protection authority (in Switzerland, the FDPIC; in the EU, your member-state authority).
Security
We protect information with encryption in transit (TLS) and at rest, access controls, and security monitoring. No internet service is 100% secure, but if we discover a personal data breach posing a risk to your rights, we will notify affected users and the relevant authorities within 72 hours of becoming aware, per GDPR Article 33.
Provenance credentials
SPECTAVIA photographs carry cryptographically signed provenance credentials issued at capture: the photographer's cryptographic signature, capture device and timestamp, and edit history. These credentials prove what the photo is — they do not track you. Your viewing activity is never stored in a credential.
Children's privacy
SPECTAVIA is not directed at children under 13 (or under 16 in some EU jurisdictions) and we do not knowingly collect their information. If you believe a child has provided us information, contact privacy@spectavia.com and we will delete it.
Cookies
The website uses only essential cookies (authentication, security) and preference cookies (e.g., language). No advertising cookies, tracking pixels, or behavioural analytics. The iOS/iPadOS app does not use cookies.
Updates to this policy
We may update this policy. For material changes we will notify you by email and in the app. The effective date above marks the current version.
Contact
Email: privacy@spectavia.com
Postal: SPECTAVIA, [REGISTERED ADDRESS], Switzerland